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1 0 TITLE OF THE INVENTION 

11 

1 2 Remote Playback of Ingested Media Content 

13 

14 BACKGROUND OF THE INVENTION 

15 

1 6 1. Field of the Invention 
17 

1 8 This invention relates to remote playback of imported media content, such as 

1 9 for example playback of imported media content from a digital video disk (DVD) at a logi- 

20 cally remote location using only limited communication bandwidth; as described herein, 

2 1 "remote" playback includes remoteness due to space, time, or logical distance. 
22 
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1 2. Related Art 

» 

2 

3 Portable digital media, for example DVDs, have become one of the preferred 

4 vehicles for storing and selling audio and visual content, for example movies and television 

5 programs. Such media permits high-resolution reproduction of the content. 
6 

7 One drawback of traditional digital media is that only a limited amount of the 

8 media usually can be placed in a player at once. For example, most DVD players accept only 

9 a limited number of DVDs at once. 
10 

1 1 Another emerging phenomenon is a trend toward integrating home com- 

1 2 puters, cable and Internet access, and entertainment centers (including televisions and high 

1 3 definition displays) together. This integration can make a large amount of memory and 

14 computing power available for use by playback devices and the like. 
15 

1 6 Given such an arrangement, it would be advantageous to be able to download 

1 7 media content to centralized storage, which could be (for one example) at a logically remote 

1 8 location from the physical media. This storage could then contain digital content from 

19 many different sources, for example the Internet, DVDs, digital audio tapes, and the like. 

20 Because of the digital nature of the content, a substantially perfect copy can be stored, al- 

2 1 lowing for high-quality playback on demand. Playback also could be at a location logically 

22 remote from the media and from storage. 
23 
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1 The ability to make a substantially perfect copy of digital media has a signifi- 

2 cant drawback. In some circumstances, it would be possible to copy the information from 

3 the DVD or other digital media, to make unauthorized copies of the digital content. Accord- 

4 ingly, producers of digital content typically insist upon strict standards for the media and 

5 for devices that can access and play the media. 
6 

7 One such standard that is used for DVDs is the Content Scramble System 

8 (CSS). CSS is one example of "Digital Rights Management" (DRM). Other types of DRM 

9 exist for digital media. CSS sets forth procedures for devices that access digital content on 

1 0 media such as DVDs and that output the digital content, either in digital form or after con- 

1 1 version to an analog form. 
12 

1 3 One aspect of CSS is that a DVD reader only reads digital data from a DVD af- 

14 ter the CSS compliant DVD reader authenticates that the data is going to be sent to a CSS 

1 5 compliant decryption module or descrambler. A CSS compliant DVD reader (herein some- 

16 times called a "DVD drive/' and distinct from a "media reader" as described herein) reads 

1 7 data and key materials from the DVD and sends the data and key materials to a destination 

1 8 for playback only after such authentication. By known techniques, each CSS compliant de- 

19 scrambler is capable of extracting a decryption key from those key materials. 

20 

2 1 Accordingly, it would be advantageous to provide a technique for logically re- 

22 mote storage and playback of content stored on digital media, such as for example on a 

23 DVD, that complies with relevant standards for digital rights management. 
24 
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1 SUMMARY OF THE INVENTION 

2 

3 One aspect of the invention is a system that addresses the foregoing needs. 

4 This system preferably includes a media reader, a storage element, and a playback device. 
5 

6 The media reader includes a read element for physical media that includes 

7 digital content representing at least one media stream . The digital media is maintained in a 

8 protected form on the physical media. In other words, no descrambling takes place in the 

9 media reader. In a preferred embodiment, no DRM (digital rights management) restric- 

10 tions or information are removed by the media reader, either. More specifically, in a pre- 

1 1 ferred embodiment, when there is mutual authentication between the DVD drive and media 

1 2 reader, key materials needed to access the digital content are communicated, but with a first 

1 3 additional layer of encryption; when the key materials are maintained on the storage ele- 

14 ment, that first additional layer of encryption has been replaced with a second additional 

1 5 layer of encryption. 
16 

1 7 In one embodiment, the media reader includes a DVD drive and the physical 

1 8 media includes at least one DVD. In this embodiment, the DVD drive includes a first au- 

19 thenticator (herein sometimes called an "authenticator for DVD drive") and the media 

20 reader includes a second authenticator (herein sometimes called an "authenticator for CSS 

2 1 decryption") . Accordingly, the overall system complies with CSS procedures using the first 

22 authenticator and the second authenticator before the DVD drive permits access to data on 

23 the DVD. As noted above, no actual CSS descrambling is performed by the media reader, 

24 and the media reader preferably maintains all DRM information intact. As noted herein, 
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1 the second authenticator might be disposed within the storage element, the playback device, 

2 or elsewhere. 

3 

4 In one embodiment, the storage element is coupled to the media reader and 

5 uses a storage mechanism different from the physical media. For one example, not in- 

6 tended to be limiting in any way, the storage element might include a magnetic disk drive, 

7 or any other physical media in which digital information is stored in a substantially differ- 

8 ent form from a physical DVD. 
9 

10 In one embodiment, the storage element stores the digital content in the same 

1 1 protected format as on the original physical media (that is, without removing or altering any 

12 of the DRM information associated with the original physical media), for a substantially 

1 3 non-evanescent time (that is, for more than required for store-and-forward routing or other 

1 4 true storage techniques) . Preferably, the digital content is sent from the media reader to the 

1 5 storage element in its original protected form, stored on the storage element in that original 

1 6 protected form, sent from the storage element to the playback device in that original pro- 

1 7 tected f or m , and decoded and presented by the playback device. In preferred embodiments, 

1 8 presentation by the playback device might include output to a secondary presentation de- 

1 9 vice in a second protected form, such as for example a form using digital encryption or us- 

20 ing a Macrovision technique. 
21 

22 Storage of the digital content in the storage element permits access to the con- 

23 tent without having to use the physical media. In a preferred embodiment, digital content 

24 from a large number of media can be stored, creating a virtual juke-box without the hard- 
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1 ware needed to physically access a large number of media. Furthermore, because the digital 

2 content is kept in a protected form, unauthorized copying is discouraged. 

3 

4 In one embodiment, the storage element includes a mass storage device, such 

5 as for example a magnetic disk drive or an array of disk drives controlled by a file server or 

6 other storage element controller, or a RAID ("redundant array of inexpensive disks") con- 

7 trolled by a RAID system controller or other storage element controller. 

8 

9 The playback device is coupled to the storage element. The playback device 

10 receives the digital content and outputs analog, digital, or analog and digital audiovisual 

1 1 content for presentation . 
12 

1 3 If one possible output from the playback device is an analog signal, the second 

1 4 protected form by which the analog signal is protected preferably includes a form of analog 

1 5 copy protection such as for example Macrovision technology. If one possible output from 

1 6 the playback device is a digital signal, the second protected form by which the digital signal 

1 7 is protected preferably includes a form of digital copy protection, such as for example HDCP 

1 8 or some other suitable digital copy protection protocol. 
19 

20 Because the digital content is always protected by at least one form of protec- 

2 1 tion (at least until it reaches one or more of the playback devices), transmission of the con- 

22 tent can be performed without substantial risk of unauthorized copying. Moreover, the sys- 

23 tern can communicate internally without allowing any outputs that are not protected ac- 

24 cording to the CSS specification. Therefore, the foregoing system permits the various ele- 
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1 merits to be substantially logically, physically, or even temporally remote. The digital con- 

2 tent can be transported a substantial distance after being read by the media reader and be- 

3 fore being output by the playback device. Similarly, the digital content can be stored for a 

4 non-evanescent duration. 

5 In another embodiment, a plurality of playback devices might be present, with 

6 at least two of those playback devices being substantially physically remote from each other, 

7 or with at least one of those playback devices being substantially physically remote from the 

8 storage element. Thus, one storage device can serve plural playback devices, such as for ex- 

9 ample plural televisions in a single home. In one embodiment, digital elements of the play- 

10 back devices receive protected outputs from the system, where those protected outputs 

1 1 might have different formats and might involve different digital methods of de-protection 

1 2 for presentation to users. 
13 

14 I n the context of the invention, there is no particular requirement that all such 

15 devices be identical, so for example, not intended to be limiting in any way, such plural de- 

16 vices might be of different kinds and might accept substantially different signals. 
17 

18 In a preferred embodiment, the system includes at least one system internal 

1 9 link, coupling at least one pair of elements. The system internal link preferably includes a 

20 communication link, capable of communicating compressed digital data representing media 

2 1 streams but not intended to effectively and timely communicate uncompressed digital data 

22 representing media streams. 
23 
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1 In a preferred embodiment, DRM information (including any key informa- 

2 tion) included in the original DVD media is communicated using the system internal link. 

3 Neither the original media stream nor its associated DRM information (which includes at 

4 least a set of key materials, which include at least a key needed to decrypt the digital con- 

5 tent) is substantially accessible to an external entity without an authorized cryptographi- 

6 cally secure key. 
7 

8 In various embodiments, the media reader and the storage element can be 

9 coupled by a least one such system internal link, the storage element and the playback de- 

10 vice can be coupled by a least one such system internal link, and/or the media reader and 

1 1 the playback device can be coupled by a least one such system internal link. 
12 

13 Other embodiments of the invention include the elements of the foregoing 

1 4 systems, methods utilized by the systems, memories such as storage media that include in- 

1 5 structions for performing those methods, and the like. 
16 

1 7 This brief summary has been provided so that the nature of the invention may 

1 8 be understood quickly. A more complete understanding of the invention may be obtained 

1 9 by reference to the following description of the preferred embodiments thereof in connec- 

20 tion with the attached drawings. 
21 
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1 BRIEF DESCRIPTION OF THE FIGURES 

2 

3 Figure 1 shows an overview of layers of data content stored on physical media, 

4 in this case a DVD. 
5 

6 Figure 2 shows a system for logically remote storage and playback of digital 

7 content that preserves digital right management protection. 
8 

9 Figure 3 shows a flowchart for logically remote storage and playback of digital 

10 content that preserves digital right management protection. 
11 

12 DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENT 

13 

14 System Elements 
15 

1 6 Figure 1 shows an overview of layers of data content stored on physical media, 

1 7 in this case a digital video disk (DVD). The invention is not limited to use with DVDs. The 

1 8 invention is equally applicable to use with any physical media that stores data protected by 

19 some form of digital rights management. 

20 

2 1 In figure l, DVD l stores digital content representing a media stream in accor- 

22 dance with physical layout 2. The physical layout specifies where data is stored physically 

23 on the disk, for example in a collection of circular tracks on the DVD. 
24 
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1 In order to help increase an amount of data that can be stored on DVD 1, data 

2 preferably is stored in a compressed form. Thus, compressed image and audio (i.e., audio- 

3 visual) data 3 is stored on DVD 1 in accordance with physical layout 2. This data preferably 

4 utilizes a standard DVD, VCD, or other storage format. For example, figure 1 shows that the 

5 data includes a video manager and video title sets according to a DVD format. Other for- 

6 mats can be used. 
7 



8 The advantage of compressed data, namely that a large amount of audiovisual 

9 data can be stored on a single DVD, also has a drawback: The same digital data can be eas- 

10 ily copied. Accordingly, data 3 preferably is protected by some form of digital rights man- 

1 1 agement 4. 
12 

13 In a preferred embodiment, digital rights management 4 conforms to that 



14 Content Scramble System (CSS) standard. This standard provides for encryption of the 

1 5 compressed data by media keys that are stored on the media. These stored media keys are 

1 6 in turn encrypted using various device keys known to authorized playback devices. Prefera- 

1 7 bly, the device keys are authorized and suitably cryptographically secure keys. 
18 



1 9 Figure 2 shows a system for logically remote storage and playback of digital 

20 content that preserves digital right management protection. 
21 

22 Briefly, one embodiment of such a system includes a media reader, a storage 

23 element, and a playback device. The media reader includes a read element for physical me- 

24 dia such as a DVD. The storage element is coupled to the media reader and uses a storage 
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1 mechanism different from the physical media to non-evanescently store the digital content 

2 in the protected form. The playback device is coupled to the storage element, preferably by 

3 a secured communication link (as described herein), such as for example an encrypted sig- 

4 nal over a LAN in a home network, or another type of communication like (whether secured 

5 or not), such as for example a signal using an Ethernet LAN in a home network. The play- 

6 back device receives the digital content and outputs analog, digital, or analog and digital 

7 audiovisual content for presentation. In this embodiment, the digital content is stored in 

8 the storage element in the protected form, sent from the media reader to the storage ele- 

9 ment in the protected form, sent from the storage element to the playback device in the pro- 
10 tected form, and output by the playback device in a second protected form. 

11 

12 Thus, figure 2 shows media reader 10 that includes a read element shown as 

1 3 DVD drive 11. The media reader also preferably includes controller 12 and software 13 that 

14 control the operation of the elements of the media reader. 
15 

1 6 Other types of read elements corresponding to other types of physical media 

1 7 besides DVDs are within the scope of the invention. However, for the sake of simplicity, the 

1 8 invention will be described herein with respect to a DVD drive. No undue experimentation 

19 or further invention would be required to apply the system of figure 2 to another type of 

20 physical media and corresponding read element. 
21 

22 Media reader 10 preferably complies with Content Scramble System (CSS) 

23 procedures. To this end, DVD drive 11 is shown with first authenticator 14, and media 

24 reader 10 is shown with second authenticator 15. In a preferred embodiment, first authen- 
EL 768 962 880 US 1 1 



217.1026.01 

1 ticator 14 and second authenticator 15 authenticate each other before DVD drive 11 permits 

2 access to data on a DVD. 

3 

4 Once authentication is performed, DVD drive 11 (or some other read element) 

5 reads data from a DVD (or other media). The data is then output from media reader 10. 
6 

7 Preferably, the data is output from media reader 10 in the same form as it was 

8 stored on the DVD, including all digital rights management features. Thus, figure 2 shows 

9 that compressed data 17 output from media reader 10 is wrapped by digital rights manage- 

10 ment 18. In a preferred embodiment, the physical media includes a DVD, and the com- 

1 1 pressed data thereon was encrypted using a CSS encryption technique, already available on 

1 2 purchased DVDs. The media reader 10 reads both compressed digital data (representing a 

13 media stream) and also key material, from the DVD, retaining both in their original form 

14 (that is, there is no need to decrypt either the digital data or unpack the key material, as 

1 5 yet). The key material includes at least one key for decrypting the digital data, which the 

16 playback device can determine in response to the key material. In various embodiments, 

1 7 the actual operations to be carried out may be substantially different for distinct playback 

1 8 devices. 
19 

20 Media reader 10 sends the output data over link 20 to non-evanescent storage 

2 1 21, for example mass storage in file server 22. 
22 

23 Storage 21 could be a disk drive or an array of disk drives. Alternatively, dif- 

24 ferent types of storage, either managed by a server or not associated with a server, could be 
EL 768 962 880 US 12 
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1 used. In any case, the storage element preferably has capacity to store digital content from 

2 plural physical media. The data preferably can be stored at storage 21 for a substantial time 

3 duration before being sent on to a playback device. 
4 

5 According to a preferred embodiment of the invention, the data including 

6 digital rights management features can be sent to any of plural playback devices from non- 

7 evanescent storage 21. For example, if server 22 is in a household, a switch or router could 

8 be used to send the data to any one of plural playback devices in the house. Other arrange- 

9 ments are within the scope of the invention, for example use of the World Wide Web. 



10 



1 1 Preferably, the data is output from the storage element in the same form as it 

12 was stored on the DVD, including all digital rights management features. Thus, figure 2 

1 3 shows that compressed data 17 output from server 22 is wrapped by digital rights manage- 

14 ment 18. 
15 

16 The storage element sends the output data over link 30 to a playback device 

17 such as playback device 31. 
18 

19 Playback device 31 also preferably complies with CSS descrambling proce- 

20 dures at the playback device. Thus, playback device 31 in figure 2 includes CSS descrambler 

21 32. 
22 

23 In the preferred embodiment, the CSS descrambler includes built-in device 

24 keys. These keys are used to decrypt media keys, in a direct or indirect manner, in the digi- 
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1 tal rights management portion of the data. The media keys are in turn used to descramble 

2 the audiovisual data, resulting in unscrambled compressed audiovisual data. In this ar- 

3 rangement, the media keys themselves are not substantially accessible to an external entity 

4 without an authorized device key. 
5 

6 In one preferred embodiment, the entire set of key material, considered as a 

7 single package, is encrypted at the media reader 10 using an AES encryption technique and 

8 a AES-256 key (that is, a symmetric 256-bit key). The encrypted key material, as well as the 

9 encrypted digital data, is maintained on the storage device without that storage device being 

1 0 able to access the AES-256 key. Authentication allows the encrypted key material, as well as 

1 1 the encrypted digital data, to be decrypted at the playback device when the playback device 

12 is able to access the AES-256 key. 
13 

1 4 Unscrambled compressed audiovisual data is particularly susceptible to illicit 

1 5 copying. Therefore, the data should be protected, for example by restricting the unscram- 

16 bled compressed data to internal busses within the playback device that are not user- 

17 accessible. 
18 

19 In a preferred embodiment, links internal to the overall system are used to 

20 communicate compressed data representing a media stream (i.e., digital content). These 

2 1 links are often unable to effectively and timely communicate uncompressed data represent- 

22 ing the media stream. For one example, not intended to be limiting in any way, a system in- 

23 ternal link might include a LAN using 100BaseT Ethernet technology in a home network. 
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1 Links 20 and 30 in Figure 2 are examples of such "system internal links" that might have 

2 these limitations. 

3 

4 In a more general sense, the system in figure 2 preferably includes at least one 

5 system internal link that is able to communicate compressed digital data representing me- 

6 dia streams but substantially unable to effectively and timely communicate uncompressed 

7 digital data representing media streams. In the system, any key materials in data commu- 

8 nicated using the system internal link preferably is not substantially accessible to an exter- 

9 nal entity without an authorized cryptographically secure key. Preferably, the media reader 

10 and the storage element are coupled by at least one of the system internal links, the storage 

1 1 element and the playback device are coupled by at least one of the system internal links, 

12 and/ or the media reader and the playback device are coupled by at least one of the system 

13 internal links. 
14 

15 Playback device 31 also includes an audio-visual decoder 33, which decom- 

16 presses the data into analog, digital, or analog and digital audiovisual data (i.e., a media 

17 stream). 

19 The uncompressed audiovisual data is also susceptible to illicit copying. 

20 Therefore, the data still should be protected, for example by restricting the uncompressed 

2 1 audiovisual data to internal busses within the playback device. 
22 

23 Digital protection chip 34 and analog protection chip 35 are provided for add- 

24 ing a second form of copy protection to the audiovisual data. This second form of copy pro- 
EL 768 962 880 US 15 
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1 tection is different from the copy protection provided by digital rights management 18. In 

2 one embodiment, one or both of the digital protection chip 34 and analog protection chip 35 

3 might be included within the same circuitry or the same chip package, and might be coupled 

4 to a digital/analog converter, an analog/digital converter, or an MPEG decoder. 
5 

6 In more detail, digital protection chip 34 preferably adds HDCP copy protec- 

7 tion. Similarly, analog protection chip 35 preferably adds analog copy protection such as 

8 "Macrovision" copy protection. 
9 

10 In the preferred embodiment, the audiovisual data is output from the play- 

1 1 back device only after the second form of copy protection has been added, for example 

12 through HDMI/DVI output jacks. A standard output device such as a television, high defi- 

13 nition television, projector or the like can then be connected to one or more of the jacks for 

14 presentation of the audiovisual media. Such an output device preferably can receive a sig- 

15 nal protected with the second form of copy protection. Examples of the output device in- 

16 elude, but are not limited to, a display that has a DVI/HDMI input or a television that is 

1 7 able to handle an analog signal to which analog copy protection using Macrovision technol- 

1 8 ogy has been added. 
19 

20 In addition to this use of a second form of copy protection, the quality of audio 

2 1 and video output is preferably restricted below a designated level, as collectively described 

22 in the CSS license agreement and the CSS procedural specifcation. For example, digital au- 

23 dio outputs might preferably carry audio data that is descrambled, and either in Dolby Digi- 

24 tal or DTS formats, or else in Linear PCM format in which the transmitted information is 
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1 sampled at no more than 48 kHz and no more than 16 bits. The analog audio output signals 

2 are preferably obtained by digital-to-analog conversion of a 2-channel Linear PCM signal, 

3 similarly sampled at no more than 48 kHz and no more than 16 bits. In a preferred em- 

4 bodiment, it should not be possible to output descrambled, decompressed, analog video 

5 data on a RGB output other than as permitted as part of a SCART connector. In a preferred 

6 embodiment, it should not be possible to output a video signal with resolution higher than 

7 standard definition unless the video content is recorded itself on the physical media in that 

8 higher resolution. 
9 

1 0 One advantage of the system described with regard to figure 2 is that at least 

1 1 two of the media reader, the storage element, and the playback device can be logically re- 

12 mote, physically remote, or both. 
13 

14 Logically remote refers to devices that are remote in terms of their logical 

1 5 structures. For example, devices that use separate logical processing spaces, separate oper- 

1 6 ating systems, separate memory spaces, separate storage elements, and/or separate proces- 

1 7 sors can all be considered to be logically remote from each other. Devices that are function- 

1 8 ally separate or logically distant, such as for example devices that are coupled by an inter- 

19 mediate device, a router or switch, or can be freely coupled or decoupled, are also consid- 

20 ered logically remote from each other. In the context of the invention, there is no particular 

2 1 hardware or software requirement that is required to make devices logically remote or not. 
22 

23 Physically remote refers to devices that are physically separate from each 

24 other by any significant (in terms of data communication) distance. For example, current 
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1 state-of-the-art devices that are more than about 50 cm apart presently require separate 

2 processors in order to operate efficiently. Thus, 50 cm is a significant distance for such de- 

3 vices. (With changes in technology, other distances might be appropriate at which to distin- 

4 guish physical remoteness.) Likewise, devices in separate parts of a room, in separate 

5 rooms, in separate buildings, and devices that are separated by larger distance are all 

6 "physically remote" to varying degrees. 
7 

8 The capability for the elements of the system to be remote from each other 

9 provides for a great many possible arrangements of the devices, both in commercial and 

1 0 home settings. This also provides for a great many possible arrangements in which the digi- 

1 1 tal data, or the DRM information, or the key materials from the DRM information, or some 

12 selection thereof, are protected by a cryptographically secure key. In these arrangements, 

1 3 the digital content can be transported any substantial distance after being read by the media 

14 reader and before being output by the playback device. Alternatively, the devices could be 

15 placed in close proximity to each other. 
16 

17 Furthermore, in a preferred embodiment, the DRM wrapped data can be se- 

18 lectively sent to one or more of plural playback devices that are remote from each other. 

1 9 For example, the DRM wrapped data can be sent to plural playback devices in a household, 

20 or across the World Wide Web or some other network to subscribers of a media distribution 

2 1 service. This opens the door to a great many commercial opportunities for more efficient 

22 distribution of audiovisual media content. 
23 
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1 Method of Operation 
2 

3 Figure 3 shows a flowchart for logically remote storage and playback of digital 

4 content that preserves digital right management protection. 
5 

6 Briefly, one embodiment of such a method includes the following steps: read- 

7 ing physical media including digital content representing at least one media stream, the 

8 digital content being maintained in a protected form; non-evanescently storing the digital 

9 content in the protected form using a storage mechanism different from the physical media; 

1 0 and playing back the digital content after conversion into analog, digital, or analog and digi- 

1 1 tal audiovisual content in a second protected from for presentation. 
12 

1 3 Steps for one possible embodiment of the invention are discussed below with 

14 reference to figure 3. Preferably, the steps are executed in the order shown. However, the 

15 invention also encompasses embodiments in which the steps are executed in different or- 

16 ders, where possible, and in different arrangements, for example in parallel. 
17 

18 In a preferred embodiment, physical media containing data representing a 

19 media stream is loaded into a read element of a media reader. For example, and without 

20 limitation, the physical media could be a DVD, and the read element could be a DVD drive. 

21 

22 Preferably, the read element (e.g., DVD drive) includes a first authenticator, 

23 and the media reader includes a second authenticator. In step no, the first authenticator 
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1 and the second authenticator authenticate each other before the read element permits ac- 

2 cess to data on the physical media. 
3 

4 The media reader sends the data, which is still protected by digital rights 

5 management elements preferably identical to those on the physical media, to non- 

6 evanescent storage in step 120. In a preferred embodiment, the key materials present on 

7 the DVD are wrapped in another layer of encryption before being sent. In some embodi- 

8 ments, this concept of "wrapped" includes the possibility that those key materials are en- 

9 crypted using a second layer of encryption by the DVD drive, and this second layer removed 

10 by the media reader, before the key materials are sent. For example, for a DVD that con- 

1 1 forms to CSS requirements, the data is still compressed, encrypted with a media key, which 

12 in turn is present on the DVD (directly or indirectly) encrypted by a secure device key. 
13 

1 4 An optional delay, which preferably may be of substantially any desired dura- 

15 tion, occurs at step 130. 
16 

17 At step 140, the digital rights management wrapped data is sent to one or 

1 8 more playback devices, which might be selected from plural available playback devices. 
19 

20 Steps 120 to 140 can occur all in one logical or physical location, or can occur 

2 1 between plural logically or physically remote locations. In other words, the media reader, 

22 storage, and playback device can be logically or physically proximate or remote from each 
2 3 other. Furthermore, the protected data preferably can be sent to a plurality of playback de- 
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1 vices for presentation, and those devices preferably can be pairwise substantially physically 

2 remote from each other. 

3 

4 In preferred embodiments, there are hardware implementations of the play- 

5 back device and the media reader preferably designed in a manner in which they effectively 

6 frustrate (1) attempts to defeat or circumvent the copy protection functions related to de- 

7 scrambling or authentication, (2) attempts to discover decrypted confidential keys, and (3) 

8 attempts to discover confidential information about the CSS Security Algorithms. As de- 

9 scribed herein, the CSS Security Algorithms include particular techniques for encrypting 
1 0 and decrypting digital data, but the invention is also applicable using different techniques. 
11 

12 In a preferred CSS compliant device, hardware implementations of the play- 

1 3 back device and the media reader are preferably designed so that it is reasonably certain 

14 that such attempts are impossible using "User Tools," and difficult using "Professional 

15 Tools." "User Tools" include tools or equipment that are widely available at a reasonable 

1 6 price, such as screwdrivers, jumpers, clips and soldering irons, and specialized electronic or 

1 7 software tools that are widely available at a reasonable price, such as eeprom readers and 

1 8 writers. "Professional Tools" include professional tools or equipment, such as chip disas- 

19 sembly systems or in-circuit emulators and specialized devices or technologies, whether 

20 hardware or software, that are designed and made available for the purpose of bypassing or 

2 1 circumventing CSS copy protection technologies. 
22 

23 At step 150, the data is descrambled, preferably in accordance with CSS de- 

24 scrambling procedures. In a preferred embodiment, a device key known to the playback de- 
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1 vice is used, directly or indirectly, to extract a media key from the data. This media key is 

2 then used to decrypt the audiovisual data, resulting in compressed descrambled audiovisual 

3 data for the media stream. 
4 

5 The compressed descrambled data is decoded, decompressed, and then sent 

6 to one or more circuits or chip packages for digital-analog conversion and the addition of 

7 new copy protection in step 160 . These circuits or chip packages might include multiple cir- 

8 cuits consolidated within a single package, or vice versa, and might include elements for 

9 conversion between analog and digital, and might include elements for decoding (such as 

1 0 for example MPEG decoding). At this point, the data represents uncompressed and unen- 

1 1 crypted audiovisual data (i.e., a media stream). 
12 

1 3 New copy protection is added to the media stream in step 170. This copy pro- 

14 tection preferably is of a different form that the copy protection provided by the digital 

15 rights management on the physical media. For example, and without limitation, HDCP 

1 6 protection can be added to digital data, and Macrovision protection can be added to analog 

17 data. 
18 

1 9 Preferably, CSS compliant procedures are observed throughout steps 110 to 

20 180. Thus the hardware implementations of the media reader and the playback device 

2 1 should be designed so that : decrypted confidential keys are not available outside integrated 

22 circuits; so that unencrypted compressed audiovisual data is not carried on a "user accessi- 

23 ble bus" (as defined herein); so as to prevent users from having ready access to exposed in- 

24 ternal components such as switches, wires, connectors or jumpers by which copy protection 
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1 technologies can be circumvented; and, when both commercially and technically reason- 

2 able, so that unencrypted decompressed data video data is not carried on a user accessible 

3 bus. As used herein, a "user accessible bus" includes any data bus which is designed for 

4 end user upgrades or access such as PCI, PCMCIA, or Cardbus, but not memory buses, 

5 CPU buses, and similar portions of a device's internal architecture." 
6 

7 Thus, compressed and unencrypted data preferably is never substantially ac- 

8 cessible to a user without use of professional equipment, and even then only with difficulty, 

9 until it is output from the playback device, at which point it is protected with some digital 

1 0 or analog form of copy protection. Any transmission of data between remote elements of the 

1 1 system preferably is restricted to system internal links that are able to communicate com- 

1 2 pressed digital data representing media streams but are substantially unable effectively and 

13 timely to communicate uncompressed digital data representing media streams. Further- 

14 more, any communication of unencrypted key materials (e.g., device keys or decrypted me- 

1 5 dia keys) preferably is not substantially accessible without use of professional equipment. 
16 

17 In a preferred embodiment, a set of system software is preferably encrypted 

1 8 and is preferably authenticated before components of the system are able to boot. This has 

1 9 the effect that without a storage element, the media reader cannot obtain its software from 

20 an authenticated (or indeed, any) storage element. This itself has the effect that without a 

2 1 storage element, the media reader cannot operate any such software to output any audio- 

22 visual data. 
23 
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1 In a preferred embodiment, the media reader encrypts the digital content for 

2 storage on the storage element, with the effect that the playback device is only able to read 

3 that digital content if it is authentic. Similarly, the DRM information from the DVD (in- 

4 eluding key materials) are wrapped in an encryption later, with the effect that snooping on 

5 the system internal link between the media reader and the storage element, or on the sys- 

6 tern internal link between the storage element and the playback device, would not serve to 

7 recover decrypted digital content. 
8 

9 In a preferred embodiment, a high degree of concern is taken for security and 

10 integrity. The hardware and the software of the system are preferably substantially unlike 

1 1 those of a personal computer (a "PC"). The operating system is preferably a proprietary 

1 2 embedded operating system and not one based on a general-purpose operating system like 

1 3 Linux or Windows. There is preferably no publicly available documentation that describes 

14 how the system software is implemented, and it is preferably not feasible for the user or 

15 other persons to add any software to the system. Such systems are well known in the art, 

1 6 and incorporation of such systems into the invention would require no invention or undue 

1 7 experimentation. Preferably, no schematics that would indicate how to illicitly access the 

1 

1 8 hardware components of the system are publicly available, and the system has no internal 

1 9 user-accessible buses of any kind. The hard disks in the storage element are preferably em- 

20 bedded in disk cartridges that use a proprietary adapter that cannot be plugged into a PC, 

2 1 and the structure and operation of the file system on these disks is preferably not publicly 

22 available. In particular, a preferred embodiment would not allow a PC running Windows, 

23 Mac OS, Linux, or a variant of UNIX to make sense of the data stored on the storage ele- 

24 ment, except with considerable difficulty. 
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1 

2 In the preferred embodiment, a user is preferably only able to interact with 

3 the components of the system either through the on-screen display, the associated touchpad 

4 and IR remote control protocols, and through the Web user interface. The software for each 

5 component of the system, including the media reader and the playback devices, is prefera- 

6 bly stored on the Server in an encrypted form. Upon booting the media reader or the play- 

7 back devices, the applicable software is preferably transferred from the storage element, in 

8 an encrypted form, to the media reader or the one or more playback devices, where it is 

9 preferably loaded into memory, decrypted, and checked for integrity before being allowed to 
10 start. 

11 

1 2 In the preferred embodiment of the invention, the only component of the ap- 

1 3 paratus that ever manipulates unscrambled audiovisual data or plain text keys is the play- 

14 back device. The playback device preferably has custom-designed printed circuit boards. 

1 5 These circuit board should have ten layers or more and, wherever technically feasible, sensi- 

16 tive signals should be run on interior layers where they are more difficult to probe by a 

1 7 skilled technician. In the preferred embodiment, extensive use should be made of surface- 

1 8 mount area-array packaging technology throughout the playback device and signals carry- 

1 9 ing sensitive data should be run along the interior contacts of area-array integrated circuits 

20 wherever feasible . 

21 

22 In some embodiments, even further copy and/or access protection techniques 

23 are used for the physical media, the storage element/mechanism, or both. These additional 
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1 protection techniques need not be the same for the physical media and the storage ele- 

2 ment/mechanism. 

3 

4 Alternative Embodiments 
5 

6 The invention can be embodied in a method for logically remote storage and 

7 playback of digital content that preserves digital rights management protection, as well as in 

8 software and/or hardware such as a reader, non-DVD storage, computer, playback device, 

9 and the like that implements the method, and in various other embodiments. 
10 

1 1 In the preceding description, a preferred embodiment of the invention is de- 

1 2 scribed with regard to preferred process steps and data structures. However, those skilled 

1 3 in the art would recognize, after perusal of this application, that embodiments of the inven- 

1 4 tion may be implemented using one or more general purpose processors or special purpose 

1 5 processors adapted to particular process steps and data structures operating under program 

1 6 control, that such process steps and data structures can be embodied as information stored 

17 in or transmitted to and from memories (e.g., fixed memories such as DRAMs, SRAMs, 

18 hard disks, caches, etc., and removable memories such as floppy disks, CD-ROMs, data 

1 9 tapes, etc.) including instructions executable by such processors (e.g., object code that is di- 

20 rectly executable, source code that is executable after compilation, code that is executable 

2 1 through interpretation, etc.), and that implementation of the preferred process steps and 

22 data structures described herein using such equipment would not require undue experi- 

23 mentation or further invention. 
24 
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1 Furthermore, the invention is in no way limited to the specifics of any particu- 

2 lar preferred embodiment disclosed herein. Many variations are possible which remain 

3 within the content, scope and spirit of the invention, and these variations would become 

4 clear to those skilled in the art after perusal of this application. For example, although the 

5 focus of the preceding description is audiovisual content, the invention is equally applicable 

6 to solely audio content, visual content, multimedia content, and any other types of content 

7 protected by authentication procedures, digital rights management techniques, or both. 

8 Other variations and alternative applications exist. 
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1 CSS Procedural Specification 
2 

3 A preferred embodiment of the invention complies with Content Scramble 

4 System (CSS) Procedural Specifications, particularly section 5 ("Licensor Operating Proce- 

5 dures and Security Standards") and section 6 ("Additional CSS Licensee Obligations") of the 

6 CSS Procedural Specifications. A copy of the specifications is included in a technical appen- 

7 dix to this application. A copy of the specifications can also be found at 

8 http://cvber.law.harvard.edu/seminar/internet-client/readings/week2/02-08CSS.pdf . 

9 Other embodiments of the invention can comply with different industry standards or to a 
10 set of custom security standards. 

11 

12 In the preferred embodiment, using the definitions given in the CSS Proce- 

1 3 dural Specifications, the invention includes a media reader, which is a Hardware Authenti- 

1 4 cator Module for CSS Decryption Module, coupled to a DVD Drive, containing a Authenti- 

15 cator Module for DVD Drive, and a playback device, which is a Hardware Descrambler. 

1 6 Again, using the definitions given in the CSS Procedural Specifications: the playback device 

1 7 incorporates and implements the functionalities of Disc Key Recovery Logic, Title Key Re- 

1 8 covery Logic, and the Content Scrambling Algorithm and incorporates the Master Key pair; 

1 9 and the media reader incorporates and implements the functionality of the CSS Authentica- 

20 tion Algorithm and incorporates the Authentication Key. 
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